No, both loop devices and xfs mounting isn’t allowed inside unprivileged containers.
It is possible to make this work inside a privileged container, but you’ll need to manually setup unix-char devices for /dev/loop-control and /dev/loop0 through /dev/loop7 (possibly more if you need more) and then put something like mount fstype=xfs, in the raw.apparmor config key.
Note that this would be rather unsafe, so fine if you’re the one running the container and you trust the xfs filesystem you’re mounting, not so fine if you’re having an untrusted user do this.
I started looking for ways how I can manually setup unix-char devices and stuck. I can’t create loop device. In my container, I don’t have the loop module for the kernel. Is it normal? @stgraber Can you point me where can I find information about manual managing unix-char devices (/dev/loop-contro and /dev/loop0…)?